Perform level 1 application security functions; Design, implement and manage security tools and systems (IDS, IPS, VPN, WAF, DLP, Anti-Virus, Anti-Malware, honeypots, SEIM, Vulnerability Scanners, Web Proxies, Forensic toolkits, MFA, key management) in a heterogeneous computing environment that spans multiple physical and virtual data centers; Install, configure and maintain security controls such as intrusion detection systems, packet capture devices, data loss prevention tools, and other commercial off the shelf and open source security tools; Enhance the security posture of internal infrastructure and client-facing systems; Perform risk assessments, vulnerability management, penetration testing and patch management for Unix/Linux, Mac, Windows systems and web applications; Understanding of attack vectors, exploits, and hacking tools; Detect, investigate and recover from security incidents as well as assisting with incident response plans; Responsible for raising company-wide security awareness and monitoring information security related web sites and newsletters to stay up to date on current attacks and trends; Assist the Security Engineering Team with evaluation of new and emerging security tools and technologies; Maintain technical documentation; Consult team members on secure coding practices; Administer network and computing devices/systems that enforce security policies and audit controls in Windows and Unix based environment; Perform network traffic inspections, network traffic monitoring, and log analysis; Recommend the application of fixes, patches, and recovery procedures in the event of a security incident; Recommend software tools and/or other solutions for technical challenges involving IT Security processes. In addition to the above; Management of all technical security equipment, including IDS/IPS devices, Data Loss Prevention equipment, web content filtering equipment, SEIM; Responding to alerts and investigating potential security incidents; Ensure that daily compliance tasks are completed in a timely fashion and tracked in the appropriate ticketing system; Perform access certifications and other identity and access management related tasks; Work closely with developmental operations and software engineering to proactively identify and fix security flaws and vulnerabilities; Knowledge in compliance procedures and protocols for Internal audit; Troubleshoot and repair issues with operating systems and security applications; Perform on-going security testing and code review to improve software security; Provide engineering designs for new software solutions to help mitigate security vulnerabilities; Design, implement and maintain networking equipment including but not limited to Firewalls, Switches, Routers, etc.